Moonlight Design is proud to announce that they are registered and approved members of IMRG who promote excellence and innovation in e-retail.

Being members of this organisation gives peave of mind to our customers as we have to follow strict guidelines as laid down by IMRG which means that you will get a quality and fair service.

Credit Card Security

Here at Moonlight Design we take your credit card protection very seriously. For your security whilst shopping with Moonlight Design, we use an independent Payment Service Provider called Sage Pay.

Sage Pay (formerly known as Protx) has achieved the highest level of compliance under the Payment Card Industry Data Security Standard (PCI). They adhere to the most stringent levels of fraud screening, ensuring that your details remain secure throughout the transaction process.

Transaction security

All transaction information passed between merchant sites and Sage Pay’s systems is encrypted using 128-bit SSL certificates. No cardholder information is ever passed unencrypted and any messages sent to your servers from Sage Pay are signed using MD5 hashing to prevent tampering. You can be completely assured that nothing you pass to Sage Pay’s servers can be examined, used or modified by any third parties attempting to gain access to sensitive information.

Encryption and Data Storage

Once on our systems, all sensitive data is secured using the same internationally recognised 256-bit encryption standards used by, among others, the US Government. The encryption keys are held on state-of-the-art, tamper proof systems in the same family as those used to secure VeriSign's Global Root certificate, making them all but impossible to extract. The data we hold is extremely secure and we are regularly audited by the banks and banking authorities to ensure it remains so.

Links to banks

Sage Pay has multiple private links into the banking network that are completely separate from the Internet and which do not cross any publicly accessible networks. Any cardholder information sent to the banks and any authorisation message coming back is secure and cannot be tampered with.

Employee access

No individuals within Sage Pay are able to decrypt transaction information or cardholder data. Sage Pay systems only allow access to their most senior staff and only in extenuating circumstances (such as investigations of Card Fraud by the Police). Your transaction information and card information is secure even from our their employees because their systems never display the full card numbers, even on administration screens.

PCI Compliance

Sage pay is also audited annually under the Payment Card Industry Data Security Standards (PCI DSS) and is a fully approved Level 1 payment services provider, which is the highest level of compliance. We are also active members of the PCI Security Standards Council (SSC) that defines card industry global regulation.

What is PCI?

The PCI standard was co-written by Visa and MasterCard International in order to establish a standard set of requirements throughout the payment card industry. It was designed to establish and enhance data security for credit card processing. The standard is also endorsed by American Express.

PCI is applicable to all/any entities that store, process or transmit cardholder data and consists of the following requirements:

· To build and maintain a secure network· To protect cardholder data· To maintain a vulnerability management program· To implement strong access control measures· To regularly monitor and test networks · To maintain an Information Security Policy

If you have any questions or concerns about security please do not hesitate to contact us on 020 8925 8639

a) We will deliver the Goods to the address you specify for delivery in your order. It is important that this address is accurate. Please be precise about where you would like the Goods left if you are out when we deliver. We cannot accept any liability for any loss or damage to the Goods once they have been delivered in accordance with your delivery instructions.

b) We will aim to deliver the Goods by the date quoted for delivery but delivery times are not guaranteed. If delivery is delayed due to any cause beyond our reasonable control, the delivery date will be extended by a reasonable period and we will contact you to arrange an alternative time.

Risk and ownership

a) Risk of damage to or loss of the Goods passes to you at the time of delivery to you or, if you fail to take delivery at the agreed time, the time when we tried to deliver.

b) Goods supplied are not for resale.

Returns/Options to cancelPlease contact Moonlight Design before returning any products.

You have the right to cancel the purchase of an item or services without having to give any reason at any time within the “cooling off period” of 14 working days, beginning, in the case of goods, on the day after you receive the goods, and in the case of services, beginning on the day after you purchase the services.

Please be aware that you will lose your right to cancel a contract for the provision of services during the cooling-off period once we have commenced activation of the services or you use the services, whichever is the earlier.

You must notify us of your cancellation by using the attached document or in another durable medium to our contact address.

Cancellation consequences:If you are in possession of the goods you are under the duty to retain them and take reasonable care of them.

Either you must send the goods back as directed by us in their original condition to the stipulated returns address at your own cost (unless we delivered the item to you in error or the item is damaged or defective) as soon as possible

or

We will arrange to collect the goods from you. You must make the goods available for collection as instructed. We reserve the right to charge the direct costs of recovery.

Once you have notified us that you wish to cancel the contract, any sum debited to us will be refunded to you as soon as possible and in any event within 30 days of your cancellation.

You will not have any right to cancel a purchase for the supply of any goods made to your specifications or clearly personalised or which by reason of their nature cannot be returned

Goods which are no longer required will only be accepted back if we are notified in writing within 14 days of delivery (as per distance selling regulations) on the understanding that they have not been installed and are returned (at your own expense) undamaged in the original packaging. Please wait until you have received a Returns Reference and instructions from us before arranging return.